.png)
1 week ago
17 BOOK THIS SPACE FOR AD
ARTICLE ADMy path to obtaining the Certified Bug Bounty Hunter (CBBH) certification was part of a broader quest in the cybersecurity realm, initially aimed at securing the Certified Penetration Testing Specialist (CPTS) credential. The journey began a year ago, not with the intention of earning the CBBH but as a stepping stone towards more advanced certifications. My strategy shifted when Hack The Box released the Certified Web Exploitation Expert (CWEE), leading me to explore parts of this new certificate. However, community feedback from platforms like Reddit suggested a more traditional path: securing the CBBH before advancing.
Working full-time as a web application penetration tester, I managed my schedule to dedicate two hours on weekdays and six hours on weekends to study. This included engaging with HTB machines and participating in CTFs, which enriched my practical experience. When I decided to pursue the CBBH, I did so without prior review, a decision that I occasionally regretted during the exam.
The CBBH exam was challenging, particularly because I hadn’t revisited the training modules for a comprehensive review. Despite this, my background in the field supported me through the process. It took five intense days of testing during my vacation, dedicating ten hours each day, to reach the passing score.
For newcomers, I recommend thorough preparation: complete all relevant PortSwigger Labs, review course modules diligently, and tackle various web challenges and machines on the HTB platform. Experienced professionals might streamline their preparation for specific challenges and reviews based on their expertise.
Pace yourself: It’s easy to feel rushed. Take your time, breathe, and approach the exam methodically.Meticulous Notes: Keep detailed notes on every discovery and step. These notes can be invaluable, especially when you hit a roadblock.Focus on the Fundamentals: Pay close attention to the CBBH academy’s topics — they are crucial for the exam.Creative Thinking: Sometimes, thinking outside the box is what it takes to solve a complex problem.I hope this reflection on my certification journey offers both guidance and motivation for your own path in the dynamic field of cybersecurity. Feel free to connect with me on LinkedIn for further discussion or questions!
https://www.credly.com/badges/299ef92f-3bdf-4ec3-8b18-8878310a437f/public_url
![what is RCE-[Remote code Execution]❓](https://miro.medium.com/v2/resize:fill:88:88/1*wJvUabMco6N48V0igs_lLQ.jpeg)
Bengali (Bangladesh) · 
English (United States) ·